TMUI RCE vulnerability CVE-2020-5902

Question

I am trying to secure F5 from recent exploit. Reading here https://support.f5.com/csp/article/K52145254&nbsp;Its setting up 404 Redirect to avoid that directory travel so question is do should i remove "include none" and replace that with following code?  but following codes in very strange format so should i just copy paste them same way ?&nbsp;include '
&lt;LocationMatch ";"&gt;
Redirect 404 /
&lt;/LocationMatch&gt;
&lt;LocationMatch "hsqldb"&gt;
Redirect 404 /
&lt;/LocationMatch&gt;
'
&nbsp;&nbsp;&nbsp;

samir · Answer

Yeah. Follow the same instructions which provided in article. ​

subrun · Answer

In the existing file there if no previous INCLUDE entry it should have following line

"include none" and make sure when you adding exact above same content you remove include none. Other wise you will have include word.

Forum Discussion

TMUI RCE vulnerability CVE-2020-5902

2 Replies

Welcome! a la Communidad DevCentral LATAM de F5!

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

Recent Discussions

SSH forward proxy

F5 CIS -> NGINX Plus Ingress Controller Integration

Can I use F5 Big-IP WAF as HoneyPot

Entra ID F5 APM MDM Intune integration compliance check

How to get group name CN from session.ad.last.attr.memberOf when there are multiple attribute value

Related Content

Question & Answer: Regarding CVE-2020-5902

Using BIG-IQ to Address the CVE-2020-5902 Vulnerability

Guidance on Patching CVE-2020-5902

Patch for CVE-2020-5902 for old HW Plattform

Mitigating Log4j Vulnerability using F5 BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS